This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

E-Mail Scanning SMTPS and IMAPS

Hello

I created a Business rule to scan imaps and smtps, according to the reporting the rule must be correct. But I have trouble with the internal certificate. I installed the Sophos software onto my Windows computers and the iPads. I then also downloaded the certificate from the Sophos XG and installed it into the browsers. It seems to me that the certificates have an acceptance problem.

My mail accounts return a message telling me that the server identity for example from gmail could not be verified. Also other mail accounts tell me the same thing. I can accept the server, but a couple minutes later the same message comes back.

Also inside the browsers, there is the same problem. For example the google chrome browser refuses the Sophos certificate totally, no chance to use the browser.

Am I doing something wrong? HTTPS scanning as well as decrypted mails are standard now a days and I really would like to use it.

Can someone advice?

Thanks

This thread was automatically locked due to age.

Parents

0 sachingurung over 9 years ago

Hi Roger,

Greetings.

Please make sure you have not regenerated CA in XG. If you have regenerated it please re-import.

You can check these links for configuration checks.

https://community.sophos.com/kb/en-US/123273

https://www.sophos.com/en-us/support/knowledgebase/123663.aspx

https://www.sophos.com/en-us/support/knowledgebase/123047.aspx

https://www.sophos.com/en-us/support/knowledgebase/123048.aspx

Hope that helps:)
Cancel
Vote Up 0 Vote Down

Cancel
0 Roger over 9 years ago in reply to sachingurung

Hi

I finally found the Time to do some more tests. I found out that the problem is gmail mail addresses. I have other mail addresses that work just fine.

Here is the setup. iPad with the build in mail tool. Gmail accounts added with the build in wizard (add gmail account). The other mail addresses I had to setup manually. All mail addresses are using encryption. Incoming IMAP SSL via port 993. Outgoing port 465 and I believe TLS.

Here is where the difference comes into play. All other accounts use for outgoing mails password authentification, gmail uses OAuth2.0 Token.

So send mail from gmail to all others -> success. send mails from all others to non gmail account -> success. Mails from gmail to itself or from other mail addresses to gmail -> fail.

In the Sophos XG mail protocols all non gmail mails show the subject, the sender and receiver addresses in the protocol. For gmail addresses it shows "NA".

I tried to change the gmail setting from OAuth 2.0 to password. Unfortunately this is all greyed out and not possible to change.

Sorry for not adding screenshots, didn't work on iPad.

Does someone have similar problems, maybe even a solution?

Thanks

Roger
Cancel
Vote Up 0 Vote Down

Cancel
0 sachingurung over 9 years ago in reply to Roger

Hi,

Do you discover any drop logs on XG when a mail is not received or is blocked?

Thanks
Cancel
Vote Up 0 Vote Down

Cancel
0 Roger over 9 years ago in reply to sachingurung

Hello

What do you think is dropped? Could you please tell me more precise where to look?

Thanks

Roger
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Roger over 9 years ago in reply to sachingurung

Hello

What do you think is dropped? Could you please tell me more precise where to look?

Thanks

Roger
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data